"Aren't you just creating a CA of CAs?
No. Each log is just a cryptographically verifiable record of every certificate that has been issued. The log cannot include a certificate without that certificate being visible to everyone. Thus, the rightful domain owner is in a position to take action when a certificate is misissued. "

You must think I'm functionally retarded.